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1 THE EMBODIMENTS OF THE INVENTION IN WHICH AN EXCLUSIVE PROPERTY 

2 OR PRIVILEGE IS CLAIMED ARE DEFINED AS FOLLOWS: 



3 

4 1. A method of decrypting a message encrypted using a truncated ring cryptosystem, the 

5 method comprising the steps of: 

6 a) selecting a window parameter T determining a plurality of windows of a 

7 predetermined size, each window being shifted by an amount less than or 

8 equal to the window parameter T; 

9 b) determining a decryption candidate for each possible window; 

10 c) testing each decryption candidate to determine whether it is a valid 

11 message; 

12 d) choosing the result of the decryption to be a valid message found in step c 

13 or if no valid message is found indicating that the message could not be 

14 decrypted; 

1 5 whereby a constant number of decryption candidates are determined for each decryption. 
16 

17 2. A method of decrypting a message encrypted using a truncated ring cryptosystem, the 

1 8 method comprising the steps of: 

19 a) generating a random sequence of integers less than a fixed value, each 

20 integer corresponding to a window of a predetermined size and being 

2 1 shifted by the amount of the integer; 

22 b) successively determining decryption candidates for each possible window, 

23 testing the decryption candidates until a valid message is found, and 

24 choosing the valid message as the result of the decryption; 

25 c) if no valid message is found after each possible window is used, indicating 

26 that the message could not be decrypted. 
27 

28 3. A method of selecting system parameters for a truncated ring cryptosystem, the method 

29 comprising the steps of: 

30 a) selecting an initial set of parameters; 
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1 b) generating private keys; 

2 c) testing the vulnerability of each private key to an attack on the 

3 cryptosystem based on determining indecipherable messages; 

4 d) when the cryptosystem is vulnerable, repeatedly increasing the value of 

5 one of the parameters and re-testing the vulnerability until the 

6 vulnerability has been reduced. 
7 

8 4. A method of encryption with a truncated ring cryptosystem, the method comprising the 

9 steps of: 

10 a) using first, second and third cryptographic hash functions to obtain a first 

1 1 string from a message and a number; 

12 b) using said number as a second string; 

13 c) using said first cryptographic hash function to obtain a third string from 

1 4 said message and said number; 

15 d) forming a padded message from said first, second, and third strings; 

1 6 b) encrypting the padded message with an encryption function. 
17 

18 5. A method according to claim 4, wherein said first string is fonned by applying said first 

19 hash function to combine said message and said number into a first value, applying said 

20 second function to said first value and said number to obtain a second value, and applying 

21 said third hash function to said second value and said message to obtain said first string. 
22 

23 6. A method according to claim 5 wherein determining said first value includes 

24 concatenating said message and said number. 
25 

26 7. A method according to claim 6, wherein determining said second value includes 

27 concatenating said number and said first value. 
28 
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18. A method according to claim 7, wherein determining said first string includes computing 

2 an exclusive or of said message and said second value. 

3 

4 9. A truncated ring cryptographic system comprising: 

5 a) system parameters selected by testing the vulnerability of randomly 

6 chosen private keys to an attack based on determining indecipherable 

7 messages; 

8 b) an encryption engine; 

9 c) a decryption engine. 
10 

11 10. A truncated ring cryptographic system comprising: 

12 a) system parameters including a window parameter less than 30; 

13 b) an encryption engine; 

14 c) a decryption engine. 
15 

16 11. A truncated ring cryptographic system according to claim 10 wherein said window 

17 parameter is less than 10. 
18 

19 12. A truncated ring cryptographic system according to claim 1 1 wherein said window 

20 parameter is 3. 
21 

22 13. A truncated ring cryptographic system according to claim 11, wherein said window 

23 parameter is 2. 
24 

25 14. A truncated ring cryptographic system according to claim 1 1, wherein said window 

26 parameter is 1. 
27 

28 
29 



TOOOOl-0466-US 

020488-33704 J 19 
McCarthy Teirault LLP TDO-RED MS215413 v. / 



Dec-15-03 01 :27pm From-MC TET SERVICES 



+4168680673 



T— 21 1 P. 028/043 F-039 



1 

2 15. A decryptor for a truncated ring cryptographic system comprising: 

3 a) a window parameter T determining a plurality of windows of a 

4 predetermined size, each window being shifted by an amount less than the 

5 window parameter T; 

6 b) a calculator to determine a decryption candidate for each possible window; 

7 c) a tester to determine whether each decryption candidate is a valid 

8 message; 

9 d) a selector to choose the result of the decryption to be a valid message 

1 0 found in step c or if no valid message is found indicate that the message 

1 1 could not be decrypted. 
12 

13 16. A decryptor for a truncated ring cryptographic system comprising: 

14 a) a random sequence of integers less than a fixed value, each integer 

15 corresponding to a window of a predetermined size and being shifted by 

1 6 the amount of the corresponding integer; 

17 b) a calculator to determine a decryption candidate for each possible window; 

18 c) a tester to determine whether each decryption candidate is a valid 

19 message; 

20 d) a selector to choose the first valid message found by the tester as the result 

21 of the decryption. 
22 

23 17. A system parameter selector for a truncated ring cryptographic system comprising: 

24 a) an initial set of parameters; 

25 b) a private key generator; 

26 c) an attack engine to determine the vulnerability of each private key to an 

27 attack on the cryptosystem based on determining indecipherable messages; 
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1 d) a parameter updater to repeatedly increase the value of one of the 

2 parameters and run the attack engine until the vulnerability of the system 

3 to the attack has been reduced. 
4 

5 18. An encryptor to encrypt a message in a truncated ring cryptographic system comprising: 

6 a) a first, a second, and a third cryptographic hash function; 

7 b) a generator to generate a number, 

8 c) a message padder configured to form a padded message from a first string 

9 computed using said first, second and third cryptographic hash functions 

10 on said message and said number, a second string formed from said 

1 1 number and a third string computed using said first cryptographic hash 

12 function on said message and said number; 

13 d) an encryptor to encrypt said padded message using an encryption function. 
14 

15 19. An encryptor according to claim 1 8, wherein said first string is formed by applying said 

16 first hash function to combine said message and said number into a first value, applying 

17 said second function to said first value and said number to obtain a second value, and 

1 8 applying said third hash function to said second value and said message to obtain said 

19 first string. 
20 

21 20. An encrytor according to claim 19 wherein combining said message and said number into 

22 said first value includes concatenating said message and said number. 
23 

24 21. An encryptor according to claim 20, wherein obtaining said second value includes 

25 concatenating said number and said first value. 
26 

27 22. An encryptor according to claim 21 , wherein obtaining said first string includes 

28 computing an exclusive or of said message and said second value. 
29 
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1 23. A data carrier containing instructions to direct a processor to decrypt a message 

2 encrypted using a truncated ring cryptosystem, the data carrier including instructions to: 

3 a) select a window parameter T determining a plurality of windows of a 

4 predetermined size, each window being shifted by an amount less than or 

5 equal to the window parameter T; 

6 b) determine a decryption candidate for each possible window; 

7 c) test each decryption candidate to determine whether ix is a valid message; 

8 d) choose the result of the decryption to be a valid message found in step c or 

9 if no valid message is found indicating that the message could not be 

10 decrypted; 

1 1 whereby a constant number of decryption candidates are determined for each decryption. 
12 

13 24. A data carrier containing instructions to direct a processor to decrypt a message 

14 encrypted using a truncated ring cryptosystem, the data carrier including instructions to: 

15 a) generate a random sequence of integers less than a fixed value, each 

16 integer corresponding to a window of a predetermined size and being 

1 7 shifted by the amount of the integer; 

18 b) successively determine decryption candidates for each possible window, 

19 test the decryption candidates until a valid message is found, and choose 

20 the valid message as the result of the decryption; 

21 c) if no valid message is found after each possible window is used, indicate 

22 that the message could not be decrypted. 
23 

24 25. A data carrier containing instructions to direct a processor to select system parameters for 

25 a truncated ring cryptosystem, the data carrier including instructions to: 

26 a) select an initial set of parameters; 

27 b) generate private keys ; 

28 c) test the vulnerability of each private key to an attack on the cryptosystem 

29 based on determining indecipherable messages; 
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1 d) when the cryptosystem is vulnerable, repeatedly increase the value of one 

2 of the parameters and re-test the vulnerability until the vulnerability has 

3 been reduced. 
4 

5 26. A data carrier containing instructions to direct a processor to encrypt a message using a 

6 truncated ring cryptosystem, the data carrier including instructions to: 

7 a) use first, second and third cryptographic hash functions to obtain a first 

8 string from a message and a number; 

9 b) use said number as a second string; 

10 c) use said first cryptographic hash function to obtain a third string from said 

1 1 message and said number; 

12 d) foim a padded message from said first, second, and third strings; 

13 b) encrypt the padded message with an encryption function. 
14 

15 27. A data carrier according to claim 26, wherein said first string is formed by applying said 

16 first hash function to combine said message and said number into a first value, applying 

17 said second function to said first value and said number to obtain a second value, and 

18 applying said third hash function to said second value and said message to obtain said 

19 first string, 
20 

21 28. A data carrier according to claim 27 wherein determining said first value includes 

22 concatenating said message and said number. 
23 

24 29. A data carrier according to claim 28, wherein determining said second value includes 

25 concatenating said number and said first value. 
26 

27 30. A data carrier according to claim 29, wherein determining said first string includes 

28 computing an exclusive or of said message and said second value. 
29 
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